Comparison Overview

Oquirrh Mountain Symphony

None

Last Update: 2025-12-14

Between 800 and 849

Founded in 1999 as the Riverton Metropolitan Orchestra, the Oquirrh Mountain Symphony is a family-friendly multi-community regional symphony serving patrons in southern Salt Lake County and northern Utah County. Under the direction of Maestro Benjamin Winkler, the Symphony performs a wide range of traditional classical, pops, jazz, and contemporary music. The crown jewel of the Symphony is the statewide annual concerto competition, ending with the Spotlight Spectacular, a concert featuring the Oquirrh Mountain Symphony and the competition winners. Presently, the Symphony is developing community programs to serve and uplift people, and looks forward to announcing more in detail soon.

NAICS: 711

NAICS Definition:

Employees: 51-200

Subsidiaries: 0

12-month incidents

Known data breaches

Attack type number

View Profile

San Francisco Symphony

201 Van Ness Avenue, None, San Francisco, California, US, 94102

Last Update: 2025-12-10

Between 700 and 749

http://www.sfsymphony.org

Founded in 1911, the San Francisco Symphony is one of the most adventurous and innovative arts institutions in the United States. Celebrated for its artistic excellence, creative performance concepts, award-winning recordings, and standard-setting education programs, the Symphony continues to shape the future of orchestral music, making a lasting impact on the cultural fabric of San Francisco and the world.

NAICS: 7111

NAICS Definition: Performing Arts Companies

Employees: 346

Subsidiaries: 0

12-month incidents

Known data breaches

Attack type number

Oquirrh Mountain Symphony

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

San Francisco Symphony

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for Oquirrh Mountain Symphony in 2025.

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for San Francisco Symphony in 2025.

Incident History — Oquirrh Mountain Symphony (X = Date, Y = Severity)

Oquirrh Mountain Symphony cyber incidents detection timeline including parent company and subsidiaries

Incident History — San Francisco Symphony (X = Date, Y = Severity)

San Francisco Symphony cyber incidents detection timeline including parent company and subsidiaries

Oquirrh Mountain Symphony

Incidents

No Incident

San Francisco Symphony

Incidents

Date Detected: 9/2021

Type:Breach

Attack Vector: Email Account Compromise

Blog: Blog

Oquirrh Mountain Symphony company demonstrates a stronger AI Cybersecurity Score compared to San Francisco Symphony company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

San Francisco Symphony company has historically faced a number of disclosed cyber incidents, whereas Oquirrh Mountain Symphony company has not reported any.

In the current year, San Francisco Symphony company and Oquirrh Mountain Symphony company have not reported any cyber incidents.

Neither San Francisco Symphony company nor Oquirrh Mountain Symphony company has reported experiencing a ransomware attack publicly.

San Francisco Symphony company has disclosed at least one data breach, while Oquirrh Mountain Symphony company has not reported such incidents publicly.

Neither San Francisco Symphony company nor Oquirrh Mountain Symphony company has reported experiencing targeted cyberattacks publicly.

Neither Oquirrh Mountain Symphony company nor San Francisco Symphony company has reported experiencing or disclosing vulnerabilities publicly.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Oquirrh Mountain Symphony company nor San Francisco Symphony company has publicly disclosed detailed information about the number of their subsidiaries.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds SOC 2 Type 1 certification.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds SOC 2 Type 2 certification.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds ISO 27001 certification.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds PCI DSS certification.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds HIPAA certification.

Neither Oquirrh Mountain Symphony nor San Francisco Symphony holds GDPR certification.

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

https://support.pentaho.com/hc/en-us/articles/41833799577741--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Generation-of-Error-Message-Containing-Sensitive-Information-Versions-before-10-2-0-4-Impacted-CVE-2025-9122

Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 8.8

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://support.pentaho.com/hc/en-us/articles/41832536185613--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Deserialization-of-Untrusted-Data-Versions-before-10-2-0-4-Impacted-CVE-2025-9121

Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss4

Base: 1.0

Severity: HIGH

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Oquirrh Mountain Symphony

VS

San Francisco Symphony

Oquirrh Mountain Symphony

San Francisco Symphony

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Performing Arts Industry Average (This Year)

Incidents vs Performing Arts Industry Average (This Year)

Incident History — Oquirrh Mountain Symphony (X = Date, Y = Severity)

Incident History — San Francisco Symphony (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Oquirrh Mountain Symphony

VS

San Francisco Symphony

Oquirrh Mountain Symphony

San Francisco Symphony

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Performing Arts Industry Average (This Year)

Incidents vs Performing Arts Industry Average (This Year)

Incident History — Oquirrh Mountain Symphony (X = Date, Y = Severity)

Incident History — San Francisco Symphony (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Breach SAN925072925

FAQ

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has the best AI Cybersecurity Score ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced more cyber incidents in the past ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced more cyber incidents this year ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced at least one ransomware attack ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced at least one data breach ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced at least one targeted cyberattack ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has experienced at least one vulnerability ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one holds the most compliance certifications ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one holds the fewest compliance certifications ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has the most subsidiaries ?

Between Oquirrh Mountain Symphony company and San Francisco Symphony company, which one has the largest number of employees ?

Between Oquirrh Mountain Symphony and San Francisco Symphony, which company holds both SOC 2 Type 1 certifications ?

Between Oquirrh Mountain Symphony and San Francisco Symphony, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Oquirrh Mountain Symphony or San Francisco Symphony ?

Which company is PCI DSS compliant — Oquirrh Mountain Symphony or San Francisco Symphony ?

Between Oquirrh Mountain Symphony and San Francisco Symphony, which company complies with HIPAA regulations for healthcare data ?

Between Oquirrh Mountain Symphony and San Francisco Symphony, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information